Hackers Exploit Newest Adobe Flash Bug

Adobe acknowledged another flaw on their Flash player, as Mila Parkour reported the bug. Users must be aware of some PDF files that are sleeping inside their computers. Or else it may drop a bomb.

Adobe confirmed today that hackers are exploiting a critical un-patched bug in Flash Player. According to a security advisory issued by the company: “There are reports that this vulnerability is being actively exploited in the wild against Adobe Reader and Acrobat.”

Mila Parkour, an independent security researcher, reported that a malicious PDF file document exploits the bug in Reader, then drops a malware on the victimized machine. All versions of Flash on Windows, Mac, Linux, and Android carries the bug by the “Authplay” component of Reader and Acrobat 9.x. And while no patch is available yet, users can protect themselves by deleting the authplay.dll. However, it will crash the Reader and Acrobat when it access a file that contains a Flash content.

Adobe promised to issue a fix by November 9, and will update the Reader and Acrobat a week after that.